If this is your first visit, be sure to
check out the Forum Rules by clicking the
link above. You may have to register
before you can post: click the register link above to proceed. To start viewing messages,
select the forum that you want to visit from the selection below.

What's this error in sslstrip?

I use to use sslstrip in BT4 R2 and it worked just fine. I installed ferret and hamster and when I use sslstrip in BT5, while running sslstrip, I get this error after a few seconds of running and it gives me user names, but it doesn't show me my gmail or facebook passwords. They're shown as a bunch of numbers of and letters, meaning sslstrip isn't working for some reason. What does this mean? Am I doing something wrong? I'm doing exactly what I used to do in BT4 R2.

Re : Re: Re : What's this error in sslstrip?

Originally Posted by ghostdog67

Hi

You can fix the problem by deleting and re-installing sslstrip .

root@bt:# sslstrip -p -k -f

sslstrip 0.6 by Moxie Marlinspike running...

There were improvements since 0.6 and since BT devs put this version in it, I guess there is a reason. So, any other way to fix this ?
By the way, I think errors come from python-twisted-web more than sslstrip, but I wouldn't bet on it for sure either.

Re: What's this error in sslstrip?

Hey guys, long time lurker, first time poster.. I've been working on a script that incorporates sslstrip and ettercap in one section. Everything works great on BT4r2 but i have been getting the same errors everyone else has here on BT5.. I have discovered however it doesn't seem to be an issue with sslstrip catching and logging the data.. The logs catch https posts but ettercap does not display the data in the term window. The usernames/passwords are right there in the sslstrip log though.. So, maybe the issues is either in the way ettercap parses the data, or in the way sslstrips presents it to ettercap.. As we all know, sslstrip 0.6 DOES play nice with ettercap so I have a feeling 0.8 will too after some attention is brought to this issue.

NOTE:According to Moxie's blog 0.8 was just released last month (4/24) but he has issued an update labeled 0.9 yesterday (5/15) which claims to fix some login issues with gmail and other sites (my testing has been primarily on gmail).. maybe this update has the solution? Is there anyway to get the new version in the repo's for an apt-get update/upgrade? one way or another i'll try to update to 0.9 later and see what happens..

anyway, i'll be working on this over the next few days.. if anyone comes up with anything new lemme know. I'll do the same.. thanks guys!

Re: Re : Re: Re : What's this error in sslstrip?

Originally Posted by comaX

There were improvements since 0.6 and since BT devs put this version in it, I guess there is a reason. So, any other way to fix this ?
By the way, I think errors come from python-twisted-web more than sslstrip, but I wouldn't bet on it for sure either.

Re: What's this error in sslstrip?

Just instaled sslstrip 0.9 ... works ok. But to be sure , replace line 1 in sslstrip.py from #!/usr/bin/env python to #!/usr/bin/python2.6 ... in this way, you will tell that sslstrip must use python version 2.6 , sslstrip 0.9 works with python 2.5 and above. Maybe in future will be ported to 3 .
End: 0.9 works just fine on BT5.

Re: What's this error in sslstrip?

Originally Posted by J0hnnyb14z3

Hey guys, long time lurker, first time poster.. I've been working on a script that incorporates sslstrip and ettercap in one section. Everything works great on BT4r2 but i have been getting the same errors everyone else has here on BT5.. I have discovered however it doesn't seem to be an issue with sslstrip catching and logging the data.. The logs catch https posts but ettercap does not display the data in the term window. The usernames/passwords are right there in the sslstrip log though.. So, maybe the issues is either in the way ettercap parses the data, or in the way sslstrips presents it to ettercap.. As we all know, sslstrip 0.6 DOES play nice with ettercap so I have a feeling 0.8 will too after some attention is brought to this issue.

NOTE:According to Moxie's blog 0.8 was just released last month (4/24) but he has issued an update labeled 0.9 yesterday (5/15) which claims to fix some login issues with gmail and other sites (my testing has been primarily on gmail).. maybe this update has the solution? Is there anyway to get the new version in the repo's for an apt-get update/upgrade? one way or another i'll try to update to 0.9 later and see what happens..

anyway, i'll be working on this over the next few days.. if anyone comes up with anything new lemme know. I'll do the same.. thanks guys!

J0hnny - any insight on how Ettercap parses login/pass data? I'd like to mod my installation so that additional logins/passes show up in the xterm window instead of having to read the log files manually. Just don't know where to mod Ettercap.